Topic: 1.6 Million Login Details Dumped on the Web

[Pez]

1.6 Million Login Details Dumped on the Web

Is your personal data ever safe online? I find myself constantly asking that question, and today is no different. Yesterday morning, reports surfaced that 1.6 million sensitive records were published online by hacker group GhostShell, including email account information, private messages, and passwords.



The Attack and the Team Behind It

GhostShell is a spinoff of the infamous hacktivist (hacker/activist) group Anonymous, and this latest breach is part of their #ProjectWhiteFox campaign. Like most hacktivist groups, the goal behind GhostShell’s activity is not necessarily financial profit. Instead, the group’s stated goal is to promote freedom of information online.

How they’ll accomplish this by stealing innocent bystanders’ login information remains a mystery.

The group claimed it sent a warning to security executives about insecure servers targeted in the attack, and the list of affected organizations is extensive; it includes NASA, the European Space Agency, and several educational institutions. Prior to this most recent hack, GhostShell took responsibility for other high-profile breaches as well. The group claims this will be its last operation carried out in 2012.

How Can You Protect Your Data?

I’ve discussed safe password use in the past, and this most recent breach gives me an opportunity to speak more on what our team at McAfee has done to help our customers keep accounts safe and protected.

One of the biggest concerns we hear on a daily basis is that while most people know they should use multiple passwords, remembering so many login details is a hassle for some and nearly impossible for others.

Introduced just this month, McAfee SafeKey is a password management system that takes the stress out of remembering passwords. Passwords and usernames are synced across all devices, so users only need to log in once to seamlessly access all of their accounts. Key features include:

• Access to favorite sites with just one click
• Secure management and auto-population for usernames and passwords
• Creation of a unique, complex password for each account
• Synched login information across all devices including PCs, Macs, Android (including Kindle Fire), and iOS

SafeKey is now available for anyone with McAfee All Access. With cross-device password management, McAfee customers are able to better secure their accounts from the threat of a data breach and quickly make changes should they become a victim.


Orginal article: Wednesday, December 12, 2012 at 5:00am by Gary Davis

[roxysoftmind]

read about this article last week and i am plainning to test this, if found useful then definitly buy this

[devnullius]

People looking for a free (cloud-based) password management system for Windows, look into lasTpass.com .

Already existing for ages, some of my friends could not live without this tool.

From their site:
ONE MASTER PASSWORD
Stop remembering passwords!

Your LastPass master password is the only password you'll ever need.

ONE CLICK LOGIN
Stop typing in passwords!

Easily log into your websites seamlessly with a single click of your mouse button.

SYNCHRONIZE ACROSS BROWSERS
Using multiple browsers/computers?

Your data is securely synchronized across all devices giving you access to it anywhere at anytime.

AUTOMATIC FORM FILLING
Automatically fill forms!

Set up multiple 'profiles' and automatically fill your personal information into web forms accurately and safely.

SECURE YOUR DATA
Protect against identity theft!

Your sensitive data is encrypted on your PC. Only your LastPass password can unlock your data and only YOU have it.

STORE SECURE NOTES!
Store other types of data securely!

Your LastPass vault isn't limited to only securely storing usernames and passwords - ANY confidential text data can be placed in your vault for safe keeping.

And this all is just for the free version...

Check it out? And...

Karma!

Devvie


~~~ notemail@facebook.com ~~~

Cuisvis hominis est errare, nullius nisi insipientis in errore persevare
——
All spelling mistakes are my own and may only be distributed under the GNU General Public License! – (© 95-1 by Coredump; 2-013 by DevNullius)

[Samker]

People looking for a free (cloud-based) password management system for Windows, look into laspass.com .

...

"t" is missing... 

Here is direct link: http://lastpass.com


However, I'm a little bit skeptical with this kind of services because of this part "All of your data is encrypted locally on your PC - only YOU can unlock it"... it's well know situation that hackers create Trojans specialized for stealing specific things from users for example: browsers cookies, FTP passwords...or that specific encrypted file from the attacked computers ...in that scenario, popular services, like this one, are very attractive for bad guys... just my 2 cents.

[devnullius]

lasTpass.com is around for ages and to my recollection, only once it was (a little bit) compromised (http://blog.lastpass.com/2011/05/lastpass-security-notification.html).

Passwords are stored on the cloud, securly synchronized from your local protected database (https://lastpass.com/support.php?cmd=showfaq&id=425).

The masterpassword should be strong AND remembered - no restore possible! At least, not easily ; ) https://lastpass.com/support.php?cmd=showfaq&id=375

Some general password tools, here: http://gizmodo.com/5876508/account-hacked-these-password-managers-keep-your-everything-safe (including short description with pros & cons).

Karma!

devnullius

[Samker]

lasTpass.com is around for ages and to my recollection, only once it was (a little bit) compromised (http://blog.lastpass.com/2011/05/lastpass-security-notification.html).

....

...even once (a little bit) is more than enough to have big headache. 

[ibu]

might give a try to lasTpass.com.... Thanks